Flaw in Grandstream VoIP phones allows stealthy eavesdropping

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications.
Dark Reading

Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

CVE-2026-2329 allows unauthenticated root-level access to SMB phones, so attackers can intercept calls, commit toll fraud, and impersonate users.
The Hacker News

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

Critical CVE-2026-2329 flaw in Grandstream GXP1600 VoIP phones enables unauthenticated RCE, call interception, and credential ...
Infosecurity-magazine.com

New Hacking Campaign Exploits Microsoft Windows WinRAR Vulnerability

A hacking campaign took just days to exploit a newly disclosed security vulnerability in Microsoft Windows version of WinRAR, researchers at Check Point have said. The attackers leveraged ...
Ars Technica

Microsoft releases urgent Office patch. Russian-state hackers pounce.

Russian-state hackers wasted no time exploiting a critical Microsoft Office vulnerability that allowed them to compromise the devices inside diplomatic, maritime, and transport organizations in more ...
Forbes

41 Microsoft Zero-Day Warnings — Millions Of Users Face Update Choice

It has only been a matter of days since the U.S. Cybersecurity and Infrastructure Security Agency confirmed that Windows users were under attack from two zero-day exploits and urged federal users to ...
CSOonline

Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign

According to the Amazon Threat Intelligence team, attackers exploited bugs in Cisco and Citrix appliances before they were made public, deploying custom in-memory tooling against core identity ...
GameSpot

Battlefield 6 And Redsec 1.1.1.5 Update Patches Out An Infamous Exploit

GameSpot may get a commission from retail offers. Battlefield 6 and the battle royale game Redsec are getting a new update on November 11, featuring a number of quality-of-life updates and bug fixes.
CoinTelegraph

SwissBorg hacked for $41M SOL after third-party API compromise

Hackers drained 193,000 SOL from SwissBorg’s Solana Earn program after a Kiln API was compromised, affecting 1% of users and 2% of assets. SwissBorg, a Switzerland-based crypto wealth management ...
TechCrunch

New zero-day startup offers $20 million for tools that can hack any smartphone

A new United Arab Emirates-based startup is offering up to $20 million for hacking tools that could help governments break into any smartphone with a text message. Apart from the highest bounty of $20 ...
Yahoo

Break into cybersecurity with beginner hacking courses for less than $3 each

The 2025 Ethical Hacking Bundle for Beginners is just $20. TL;DR: Take the first step into the world of cybersecurity with no prior tech skills required, thanks to The 2025 Ethical Hacking Bundle for ...